CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2025-34216 Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.1026Β and Application prior to version 20.0.2702Β (VA deployments only)Β expose a set of unauthenticated REST API endpoin... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-34215 Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.1026 and Application prior to version 20.0.2702 (only VA deployments) expose an unauthenticated firmware-upload flow: ... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-34212 Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.843Β and Application prior to version 20.0.1923Β (VA/SaaS deployments) possessΒ CI/CD weaknesses: the build pulls an unve... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-34207 Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 22.0.1049 and Application prior to 20.0.2786 (VA and SaaS deployments)Β configure the SSH client within Docker instances with the fo... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57432 Blackmagic Web Presenter version 3.3 exposes a Telnet service on port 9977 that accepts unauthenticated commands. This service allows remote attackers to manipulate stream settings, including changing... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59304 A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57601 AiKaan Cloud Controller uses a single hardcoded SSH private key and the username `proxyuser` for remote terminal access to all managed IoT/edge devices. When an administrator initiates "Open Remote Te... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-50900 An issue was discovered in getrebuild/rebuild 4.0.4. The affected source code class is com.rebuild.web.RebuildWebInterceptor, and the affected function is preHandle In the filter code, use CodecUtils.... | 9.8 | CRITICAL | β | 0 |
| CVE-2010-20103 A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The backdoor implements a hidden FTP command trigger that, when in... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-34217 Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA/SaaS deployments) contain an undocumented 'printerlogic' user with a hardcoded SSH public key in '~/.ssh/authorized_keys... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-58462 OPEXUS FOIAXpress Public Access Link (PAL) before version 11.13.1.0 allows SQL injection via SearchPopularDocs.aspx. A remote, unauthenticated attacker could read, write, or delete any content in the ... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-29365 spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in READ_STRING_SYSCALL. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-9762 The Post By Email plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the save_attachments function in all versions up to, and including, 1.0.4b. This m... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-9485 The OAuth Single Sign On β SSO (OAuth Client) plugin for WordPress is vulnerable to Improper Verification of Cryptographic Signature in versions up to, and including, 6.26.12. This is due to the plugi... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-8625 The Copypress Rest API plugin for WordPress is vulnerable to Remote Code Execution via copyreap_handle_image() Function in versions 1.1 to 1.2. The plugin falls back to a hard-coded JWT signing key wh... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-55835 File Upload vulnerability in SueamCMS v.0.1.2 allows a remote attacker to execute arbitrary code via the lack of filtering. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-55637 Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to contain a command injection vulnerability via the setddns_pip_system() function. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-11126 A security flaw has been discovered in Apeman ID71 218.53.203.117. This vulnerability affects unknown code of the file /system/www/system.ini. The manipulation results in hard-coded credentials. The a... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59954 Knowage is an open source analytics and business intelligence suite. Versions 8.1.26 and below are vulnerable to Remote Code Exection through using an unsafe org.apache.commons.jxpath.JXPathContext in... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59360 The killProcesses mutation in Chaos Controller Manager is vulnerable to OS command injection. In conjunction with CVE-2025-59358, this allows unauthenticated in-cluster attackers to perform remote cod... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57347 A vulnerability exists in the 'dagre-d3-es' Node.js package version 7.0.9, specifically within the 'bk' module's addConflict function, which fails to properly sanitize user-supplied input during prope... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57321 A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions thru 1.2.10 allows attackers to inject properties on Object.prototype via supplying a crafted p... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-53639 MeterSphere is an open source continuous testing platform. Prior to version 3.6.5-lts, the sortField parameter in certain API endpoints is not properly validated or sanitized. An attacker can supply c... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59827 Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.... | 9.8 | CRITICAL | β | 0 |
| CVE-2012-10021 A stack-based buffer overflow vulnerability exists in D-Link DIR-605L Wireless N300 Cloud Router firmware versions 1.12 and 1.13 via the getAuthCode() function. The flaw arises from unsafe usage of sp... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-34186 Ilevia EVE X1/X5 Server version β€ 4.7.18.0.eden contains a vulnerability in its authentication mechanism. Unsanitized input is passed to a system() call for authentication, allowing attackers to injec... | 9.8 | CRITICAL | β | 0 |
| CVE-2013-10051 A remote PHP code execution vulnerability exists in InstantCMS version 1.6 and earlier due to unsafe use of eval() within the search view handler. Specifically, user-supplied input passed via the look... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59359 The cleanTcs mutation in Chaos Controller Manager is vulnerable to OS command injection. In conjunction with CVE-2025-59358, this allows unauthenticated in-cluster attackers to perform remote code ex... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-53888 RIOT-OS, an operating system that supports Internet of Things devices, has an ineffective size check implemented with `assert()` can lead to buffer overflow in versions up to and including 2025.04. As... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-7393 Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Mail Login allows Brute Force.This issue affects Mail Login: from 3.0.0 before 3.2.0, from 4.0.0 before 4.2.0. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-27261 Ericsson Indoor Connect 8855 contains an SQL injection vulnerability which if exploited can result in unauthorized disclosure or modification of data. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57441 The Blackmagic ATEM Mini Pro 2.7 exposes sensitive device and stream configuration information via an unauthenticated Telnet service on port 9990. Upon connection, the attacker can access a protocol p... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-50660 File Upload Bypass was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the file upload functionality | 9.8 | CRITICAL | β | 0 |
| CVE-2025-36890 Elevation of Privilege | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59834 ADB MCP Server is a MCP (Model Context Protocol) server for interacting with Android devices through ADB. In versions 0.1.0 and prior, the MCP Server is written in a way that is vulnerable to command ... | 9.8 | CRITICAL | β | 0 |
| CVE-2013-10048 An OS command injection vulnerability exists in various legacy D-Link routersβincluding DIR-300 rev B and DIR-600 (firmware β€ 2.13 and β€ 2.14b01, respectively)βdue to improper input handling in the un... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-45150 Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive files via supplying a crafted request. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-51451 In TOTOLINK EX1200T firmware 4.1.2cu.5215, an attacker can bypass login by sending a specific request through formLoginAuth.htm. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-40836 Ericsson Indoor Connect 8855 contains an improper input validation vulnerability which if exploited can allow an attacker to execute commands with escalated privileges. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57602 Insufficient hardening of the proxyuser account in the AiKaan IoT management platform, combined with the use of a shared, hardcoded SSH private key, allows remote attackers to authenticate to the clou... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-6388 The Spirit Framework plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.2.14. This is due to the custom_actions() function not properly validating a us... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-61045 TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-61044 TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the agentName parameter in the setEasyMeshAgentCfg function. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-36846 An issue was discovered in Eveo URVE Web Manager 27.02.2025. The application exposes a /_internal/pc/vpro.php localhost endpoint to unauthenticated users that is vulnerable to OS Command Injection. Th... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-40715 SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo mensaje inΒ ... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-40795 A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions), SIMATIC PCS neo V5.0 (All versions), SIMATIC PCS neo V6.0 (All versions), User Management Component (UMC) (All versions < V2... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-40714 SQL injection vulnerability in versions prior to 4.7.0 of Quiter Gateway by Quiter. This vulnerability allows an attacker to retrieve, create, update and delete databases through the campo id_factura ... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-59841 Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.2.0 to before 2.3.1, the FlagForge web application improperly handles session invalidation. Authenticated users can continue to acce... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-10659 The Telenium Online Web Application is vulnerable due to a PHP endpoint accessible to unauthenticated network users that improperly handles user-supplied input. This vulnerability occurs due to the in... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-57631 SQL Injection vulnerability in TDuckCloud v.5.1 allows a remote attacker to execute arbitrary code via the Add a file upload module | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.